I personally think it's a bad idea to block "social" sites at work since many of these sites do have a place in today's workplace, and it's also a band-aid-type solution to a discipline/work ethic problem. However, you could potentially just dual-boot such that one OS uses OpenDNS, and the other doesn't. Ubuntu Netbook Edition requires about 4GB of disk space, but there are probably other netbook distributions that are smaller.
–
Lèse majestéApr 22 '12 at 5:04

Kids huh? There is no telling what they are capable of. My 9 year old cousin created a three column book report complete with Smart Art, a table and a drop letter. Nine years old. And I got coworkers who still struggle with Facebook. . .
–
surfasbJul 11 '11 at 19:28

Interestingly enough this was to limit what the college level interns could do on the company netbook. The key was to combine both the Windows Live Family controls and the OpenDNS logging to make a feature rich solution.
–
SwiftJul 11 '11 at 21:57

1

Force them to use their iPhones. Good idea.
–
surfasbJul 12 '11 at 0:04

Haha yeah, true enough. Even thinking for a minute that I could prevent them from visiting personal websites on company time would be far fetched.
–
SwiftJul 12 '11 at 13:31

OpenDNS is convenient for this purpose, but no DNS system is really designed for filtering. Determined, knowledgeable people can still get to "bad sites" if they really want to by entering the IP address. If you are talking about Windows, Windows doesn't natively support "per-user" network configurations. You likely could create some user-specific *.cmd files that use the netsh command to reconfigure the DNS hosts on the fly, though.

But, you might actually need run through a local network's DNS servers sometime to resolve hosts on their LAN, such as at a workplace. Using DNS for filtering is not my perferred solution.

I would suggest solving your problem by using a local HTTP proxy or other program designed for web filtering. If you are running Windows and want something "quick and easy" to protect children online, I've used K9 Web Protection for a while and was really happy with it.

Put a BIOS password on your laptop and disable CD/USB booting so they can't boot a live CD/USB stick and bypass all your protection, though.

you'll have to login into the user's account and change network settings, which requires administrator password to make changes. go to control panel, then network sharing center, then change adapter settings, then right-click on local area connection, then select internet protocol version 4, then click properties, then select use the following dns server addresses, then enter opendns adresses into the fields, then click ok and close. at some point during this you'll be prompted for admin password. that's it.

be sure that the user is a standard user with parental controls and not an administrator.

note: user may still be able to go to google image search, turn off google's search filter, do a search for porn and view porn related images which will include all kinds of porn. therefore, parental supervision is still required.